SLA and incident response
Mnemom’s availability commitments scale with plan tier. The free tier is best-effort; paid tiers carry contractual targets, with Enterprise escalating to custom terms. This page documents the public position. The authoritative numbers for any given contract live in the MSA and its SLA exhibit.A public status page is live at
status.mnemom.ai. It shows per-service operational state and 90-day uptime history. Incident communications go through the status page and email (for contractual customers).Uptime targets by tier
Uptime is measured monthly against the gateway control plane — the endpoints underapi.mnemom.ai/v1. Data-plane components in the Safe House (front-door checkpoint, back-door checkpoint, AIP) inherit the control-plane target; when the gateway is up, enforcement is up.
| Tier | Monthly uptime target | Monthly error-budget equivalent |
|---|---|---|
| Free / OpenClaw | Best-effort — no SLA | — |
| Developer | 99.9% | ~43 minutes |
| Team | 99.95% | ~22 minutes |
| Enterprise | 99.99% target, contract-specific | ~4 minutes |
(total minutes in the month − unavailable minutes) ÷ total minutes. A minute is “unavailable” when the synthetic monitors that exercise the public API return a non-success status from at least two geographic probes simultaneously.
Recovery objectives
| Tier | RTO (target restore time) | RPO (max acceptable data loss window) |
|---|---|---|
| Free / OpenClaw | Best-effort | Best-effort |
| Developer | 4 hours | 1 hour |
| Team | 1 hour | 15 minutes |
| Enterprise | 15 minutes, contract-specific | 5 minutes, contract-specific |
Incident severity
Incidents are classified on declaration and re-classified as facts change.| Severity | Definition | First notification target |
|---|---|---|
| SEV-1 | Full outage of the gateway or dashboard, OR a confirmed data exposure, OR a canary leak indicating agent compromise for any Enterprise customer. | ≤ 15 minutes |
| SEV-2 | Partial outage (single endpoint class, single region), OR degraded performance > 3× baseline latency, OR enforcement falling back to observe mode. | ≤ 30 minutes |
| SEV-3 | Background job failures (billing, observer, async AIP / back-door checkpoint) that do not affect synchronous enforcement or dashboard access. | ≤ 2 hours |
| SEV-4 | Cosmetic or minor functional degradation. | Next business day |
Incident communication
Who hears what, when, and through which channel.| Audience | Channel | First update | Cadence |
|---|---|---|---|
| All customers | Status page | ≤ 30 minutes after SEV-1/SEV-2 declaration | Every 30 minutes until mitigated, then on resolution |
| Enterprise contract contacts | Email to the designated security / operational contact | ≤ 15 minutes after SEV-1 declaration | Every 30 minutes until mitigated, then on resolution and at post-mortem |
| Team plan customers | Email to the primary org owner | ≤ 30 minutes after SEV-1/SEV-2 | Every hour until mitigated, then on resolution |
| Developer plan customers | Status page | Same as all-customers cadence | Same |
| Free / OpenClaw | Status page | Best-effort | Best-effort |
- Dashboard enforcement-mode downgrade notice if Safe House falls back to observe mode during the incident.
- Breach-notification support for customers with a regulator obligation under GDPR Article 33, HIPAA Breach Notification Rule, or sector-specific law. Mnemom provides the timeline, technical detail, and attestations needed for the customer’s notification; the customer is the reporting party. See Compliance — shared-responsibility boundaries.
How customers reach us
| Need | Where to send it |
|---|---|
| Suspected security vulnerability | Email [email protected] (PGP key available on request). For the open protocol repos you may also file a GitHub Security Advisory: aap, aip. Do not file public issues. See SECURITY.md. |
| Active incident affecting your traffic | Dashboard → Support → Incident (SEV-1/SEV-2 tag). Enterprise customers use the dedicated incident email on file. |
| Regulator-driven breach-notification assistance | Your Enterprise account owner or [email protected]. |
| Non-urgent product or billing question | Dashboard → Support → Question. |
Status page
status.mnemom.ai is live and publishes:
- Current operational state for each service (gateway, dashboard, proof-chain anchoring) per region.
- Active incidents with a live update log.
- 90-day uptime history.
SLA credits
Enterprise and Team contracts include SLA credits against the subscription fee when monthly uptime misses the contractual target. The credit schedule is in the MSA’s SLA exhibit; typical structure:- Below target but ≥ 99.0%: 10% credit on the monthly subscription.
- Below 99.0% but ≥ 95.0%: 25% credit.
- Below 95.0%: 50% credit.
See also
- Launch SLOs & Deferrals — Per-scenario SLO commitments (S1–S10) and the explicit deferral list
- Compliance posture — Regulatory status and shared-responsibility boundaries
- Safe House — the per-customer perimeter the uptime target covers
- AEGIS — the cross-tenant Protection Network and its published SLOs
- Managed Rules — the signed rule pipeline whose propagation latency is published as an SLO
- Observability — Customer-side signals for detecting degradation early
- API reference overview — Error codes, rate limits, and timeouts
AEGIS SLO commitments
AEGIS publishes Protection-Network SLOs at/trust/slos:
| SLO | Target |
|---|---|
| Managed Rule propagation | P95 ≤ 30 seconds (target; first 30-day window publishes 30 days post-GA) |
| Rule-set freshness under normal operation | P99 ≤ 5 minutes |
| Failover availability | 99.99% |
| Staleness alert threshold | 24 hours (P0 page) |
RECIPE_PROMOTION_SIGNING_KEY, RECIPE_KV_SIGNING_KEY, RECIPE_R2_SIGNING_KEY) are the mechanisms behind these commitments. See Managed rule envelope schema for the failover behavior and alert tags.